From owner-freebsd-net@freebsd.org Thu Sep 3 22:15:47 2020 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 789B63CCD17 for ; Thu, 3 Sep 2020 22:15:47 +0000 (UTC) (envelope-from hrs@FreeBSD.org) Received: from smtp.freebsd.org (smtp.freebsd.org [96.47.72.83]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BjFW72ZY1z459s; Thu, 3 Sep 2020 22:15:47 +0000 (UTC) (envelope-from hrs@FreeBSD.org) Received: from localhost (unknown [IPv6:2400:4051:a743:3c00:16:ceff:fe34:2700]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) (Authenticated sender: hrs) by smtp.freebsd.org (Postfix) with ESMTPSA id 3BC2F12127; Thu, 3 Sep 2020 22:15:46 +0000 (UTC) (envelope-from hrs@FreeBSD.org) Date: Fri, 04 Sep 2020 07:15:29 +0900 (JST) Message-Id: <20200904.071529.1886592949710166724.hrs@FreeBSD.org> To: bzeeb-lists@lists.zabbadoz.net Cc: hps@selasky.org, cristian.cardoso11@gmail.com, freebsd-net@freebsd.org Subject: Re: Ipv6 neighbor limit From: Hiroki Sato In-Reply-To: <3A46B5FE-93E3-40C8-99EA-76F3E03D5B3E@lists.zabbadoz.net> References: <592b041e-0243-8148-3ac6-ca8da4ca5e84@selasky.org> <3A46B5FE-93E3-40C8-99EA-76F3E03D5B3E@lists.zabbadoz.net> X-Old-PGPkey-fingerprint: BDB3 443F A5DD B3D0 A530 FFD7 4F2C D3D8 2793 CF2D X-PGPkey-fingerprint: 6C0D 2353 27CF 80C7 901E FDD2 DBB0 7DC6 6F1F 737F X-Mailer: Mew version 6.8 on Emacs 26.3 Mime-Version: 1.0 Content-Type: Multipart/Signed; protocol="application/pgp-signature"; micalg=pgp-sha512; boundary="--Security_Multipart(Fri_Sep__4_07_15_29_2020_026)--" Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Sep 2020 22:15:47 -0000 ----Security_Multipart(Fri_Sep__4_07_15_29_2020_026)-- Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit "Bjoern A. Zeeb" wrote in <3A46B5FE-93E3-40C8-99EA-76F3E03D5B3E@lists.zabbadoz.net>: bz> On 3 Sep 2020, at 12:48, Hans Petter Selasky wrote: bz> bz> > On 2020-09-03 14:34, Cristian Cardoso wrote: bz> >> Hi bz> >> Would anyone know if there is any limit in the FreeBSD kernel for IPv6 bz> >> neighbors? I checked the ndp documentation and found nothing, looking bz> >> at the return of the sysctl command I also did not find anything bz> >> explicit. bz> >> bz> > bz> > Hi, bz> > bz> > There is something called: bz> > bz> > sys/netinet/in.h:#define IP_MAX_MEMBERSHIPS 4095 bz> > sys/netinet6/in6.h:#define IPV6_MAX_MEMBERSHIPS 4095 bz> > bz> > Is this what you are looking for? bz> bz> bz> Or more along the lines of https://reviews.freebsd.org/D24035 ? This reminds me D22712 (sorry for not responding...). I agree that we should set limits by default to the number of entries in lists for neighbors and prefixes. -- Hiroki ----Security_Multipart(Fri_Sep__4_07_15_29_2020_026)-- Content-Type: application/pgp-signature Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- iMkEABMKAC4WIQRsDSNTJ8+Ax5Ae/dLbsH3Gbx9zfwUCX1FrARAcaHJzQGZyZWVi c2Qub3JnAAoJENuwfcZvH3N/R8MCCQGJU1l5+8f2H0kHSVXw3Rf1/gxVRnhdEuhQ s2rbyNtIiwJ58OjnkjhHcngwe/SvNkILj0jI9EBP1driM/DpbyCx0QIHSQTzX4Ql QfxXDaucTliINiMSydYtnYZzCMVZR0Gda104rpc8g0yxgcTNWdWdvP2nGvr7oiRx kt1d9q/DDB7WBhQ= =mJIq -----END PGP SIGNATURE----- ----Security_Multipart(Fri_Sep__4_07_15_29_2020_026)----